ГлавнаяУязвимости → CVE-2026-11557
8.8высокая

CVE-2026-11557

Описание

A weakness has been identified in Tenda F451 1.0.0.7/1.0.0.9. The affected element is the function fromNatlimit of the file /goform/Natlimit of the component Web Management Interface. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been made available to the public and could be used for attacks.

CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/Robots10/IoT_vlu/blob/main/reports/Tenda/fromNatlimit/fromNatlimit.mdhttps://vuldb.com/cve/CVE-2026-11557https://vuldb.com/submit/836477https://vuldb.com/vuln/369167https://vuldb.com/vuln/369167/ctihttps://www.tenda.com.cn/